aaron/nixconfig
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: aaron:feature/installguide
Branches Tags
aaron:main aaron:feautre/zshimprovements aaron:feature/cleanup aaron:feature/argon aaron:feature/update aaron:feature/docker aaron:feature/openssh aaron:feature/installguide aaron:feature/documentation aaron:feature/update_flake aaron:feature/add_update_resolved aaron:feature/add_ghostty_hm aaron:feature/add_homelab_ca aaron:feature/tailscale aaron:feature/fix_boot_errors aaron:feature/firmwareupdates aaron:feature/nix_upgrade aaron:feature/proton-ge aaron:feature/optimize
..
compare: aaron:feature/docker
Branches Tags
aaron:main aaron:feautre/zshimprovements aaron:feature/cleanup aaron:feature/argon aaron:feature/update aaron:feature/docker aaron:feature/openssh aaron:feature/installguide aaron:feature/documentation aaron:feature/update_flake aaron:feature/add_update_resolved aaron:feature/add_ghostty_hm aaron:feature/add_homelab_ca aaron:feature/tailscale aaron:feature/fix_boot_errors aaron:feature/firmwareupdates aaron:feature/nix_upgrade aaron:feature/proton-ge aaron:feature/optimize

6 Commits
feature/in ... feature/do

Author SHA1 Message Date
aaron
cc44e68a2e feature(users): add docker group to the main user 2026-02-21 21:17:19 +01:00
aaron
b97d6cc47d feature(neon): add docker to neon 2026-02-21 21:16:42 +01:00
aaron
0d495039ee feature(docker): add docker daemon config for nixos 2026-02-21 21:16:17 +01:00
aaron
64b76ad7fd Merge pull request 'feature(ssh): add more security to the ssh config' (#22) from feature/openssh into main 
Reviewed-on: #22
 2026-02-21 18:09:31 +01:00
aaron
aea7ba5c97 feature(ssh): add more security to the ssh config 2026-02-21 18:04:47 +01:00
aaron
135f2bdac9 Merge pull request 'refactor(installguide): unify device naming, add notes and correct typos' (#21) from feature/installguide into main 
Reviewed-on: #21
 2026-02-21 17:56:00 +01:00
4 changed files with 35 additions and 1 deletions
Expand all files Collapse all files

1
hosts/neon/configuration.nix
View File

@@ -5,6 +5,7 @@
../../modules/nixos/audio.nix ../../modules/nixos/audio.nix
../../modules/nixos/bootloader.nix ../../modules/nixos/bootloader.nix
../../modules/nixos/certificates.nix ../../modules/nixos/certificates.nix
../../modules/nixos/docker.nix
../../modules/nixos/gnupg.nix ../../modules/nixos/gnupg.nix
../../modules/nixos/locales.nix ../../modules/nixos/locales.nix
../../modules/nixos/networking.nix ../../modules/nixos/networking.nix

23
modules/nixos/docker.nix Normal file
View File

@@ -0,0 +1,23 @@
{ config, lib, pkgs, ...}:
{
virtualisation.docker = {
enable = true;
# Customize Docker daemon settings
daemon.settings = {
dns = [ "1.1.1.1" "8.8.8.8" ];
log-driver = "journald";
registry-mirrors = [ "https://mirror.gcr.io" ];
storage-driver = "overlay2";
};
# Use the rootless mode
rootless = {
enable = true;
setSocketVariable = true;
};
# Install docker-compose
extraPackages = with pkgs; [
docker-compose
];
};
}

10
modules/nixos/openssh.nix
View File

@@ -5,5 +5,15 @@
services.openssh = { services.openssh = {
enable = true; enable = true;
openFirewall = true; openFirewall = true;
ports = [ 666 ];
settings = {
AuthenticationMethods = "publickey";
KbdInteractiveAuthentication = false;
MaxAuthTries = 5;
PasswordAuthentication = false;
PermitRootLogin = "no";
X11Forwarding = false;
};
}; };
} }

2
modules/nixos/users.nix
View File

@@ -5,7 +5,7 @@
users.users.aaron = { users.users.aaron = {
isNormalUser = true; isNormalUser = true;
group = "users"; group = "users";
extraGroups = [ "wheel" "networkmanager" ]; extraGroups = [ "wheel" "networkmanager" "docker" ];
shell = pkgs.zsh; shell = pkgs.zsh;
}; };